CVE-2013-1694

The PreserveWrapper implementation in Mozilla Firefox before 22.0, FirefoxESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.xbefore 17.0.7 does not properly handle the lack of a wrapper, which allowsremote attackers to cause a denial of service (application crash) orpossibly execute arbitrary code by leveraging unintended clearing of thewrapper cache's preserved-wrapper flag.